All right, DEF CON!
We're going to try something new.
It's going to be kind of a shocker for you.
It's something we haven't really done too often.
It's called starting on time.
And you're going to notice we've tightened up the closing a bit.
Every year we try to make it more compact and be sensitive to your time.
And so normally it's about ‑‑ it used to be two hours.
How many remember that?
Yeah.
Then it was an hour and a half.
And now we're targeting an hour.
So you can get out of here and get to the bars and hang out a little bit more.
So we're going to try to do it in an hour.
So before we really get started, I need a little bit of audience feedback.
How many people noticed this year?
There's two things.
There's two things we did to try to make things a little bit better for everybody.
One is five more minutes between tracks so you don't feel so crushed getting from room
to room.
Is that good?
Yeah?
Excellent.
Okay.
So we'll stick with that, then, because did anybody really feel like a 45‑minute talk
was that much shorter than a ‑‑ Excuse me.
We have a tradition at DEF CON.
And I believe we have ‑‑
We have a first‑time speaker at DEF CON 21, a Mr. ‑‑ what is it?
Dark?
Tangent.
Mr. Tangent.
So we have a shot for you.
I'm supposed to drink this?
Yes, you are.
Okay.
Thank you, sir.
All right.
To ‑‑ Jeff, sorry.
Mr. Tangent is going to represent all first‑time attendees at DEF CON.
Thank you for coming.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
So I was saying ‑‑ I was saying very smooth, very smooth alcohol.
The finest that money can buy.
So that was one thing.
How much did you guys get into the villages?
We almost double the sizes of the villages this year.
So ‑‑ so you notice we took away space from one of the trash bins.
And we basically gave it to the villages.
And that whole idea was how do I break you guys into smaller sections, smaller groups
so you can spend time and make new friends and kind of get that smaller one‑on‑one
kind of creative problem‑solving thing going.
And so we added 20 stations to the hardware hacking villages and they were, like, filled.
So next year we're going to probably add another 20.
So you can sort of see where this is heading.
We might actually ‑‑ depending, we might actually have to cut a track of speaking,
but instead we'll end up with all these extra villages and all these other contests and
things you can participate in.
So that's really where we're trying to go with this, is get you guys into smaller problem‑solving
groups and just really, you know, really enjoy it, and it will be on us when we're
selecting speeches to try to just really pitch.
Pick the best speeches.
And that's what's happening.
So I'm glad you guys are buying in on it.
That's what we're doing next year.
So very, very good.
Yay, team.
So we're now going to start the closing ceremonies.
And this is a tradition we've done for a while.
We're going to announce all the winners of all the various contests.
We have up here all the black badges that get the winners to the black badge rated contests
in the DEF CON for life.
It changes the name.
It changes year to year sometimes what the contests are based on the amount of effort
involved, technical skill needed, and to a large part some are just tradition.
Everybody always plays in Hacker Jeopardy!
So Hacker Jeopardy!
Always participates.
It's also the first year of the new Copter the Flag organizers, Legit BS.
And so I think they've done a fantastic year this year.
Yeah.
Yeah.
Yeah.
I think the winners are.
So I've got my sheet.
I've got my numbers on it.
And I think I've talked to my five minutes.
So I'm going to ‑‑ wait.
I've got two minutes and 43 seconds.
You better hold that up to everybody.
See?
Look.
Look at that.
You know, if we get too much more organized, we'll be threatened, we'll be confused with
somebody with a plan.
So I'm going to intentionally ‑‑ intentionally inject some chaos monkey in here.
And throw you a curve and not go with it.
So let me see.
There's a really old embarrassing picture of me somebody's found up on stage.
So I want to introduce Lockheed.
Do you remember last year when Lockheed retired?
It's like, what are you doing here?
Yeah, because that worked out well.
That's right.
It's a curse and a blessing.
So I'd like to introduce Lockheed.
And he's going to go through some of the items here.
And we're going to pass the torch on a few of our staff that are retiring, like Lockheed.
.
We fully expect to see them back, maybe next year, doing something else.
But for now, they're changing their main role and maybe transitioning into something else.
So Lockheed, take it away.
All right.
So first question.
How many people believe that they have survived DEF CON now?
I have some bad news for you.
You did it wrong.
First of all, I've really got to take just a couple minutes here.
We have an amazing staff that puts this together for you guys.
We work literally all year round to make this happen.
So I've got to call out all the different teams.
Cheryl and Doolittle with production.
We've got Noid, CJ, Lee with security, keeping you guys safe and organized.
.
Speaker operations.
Who makes sure speakers show up.
.
The network team who provides you Internet access for the porns.
.
Contest and event for, what was it, 30% of the floor space?
Yeah.
Yeah.
.
Registration.
Who made sure that that long damn line moved as quick as possible.
.
Dispatch.
Who made sure that that long damn line moved as quick as possible.
Dispatch.
Which you guys don't see, but they help keep us organized and actually talking to each
other.
.
The swag guys for, you know, all the shit you buy.
.
Info booth for providing you guys updates to things that were wrong in the program.
.
.
Our quartermaster staff for making time for us.
.
The press corps for making sure that shit arrives and gets doled out for you guys.
.
The press corps for making sure that the press gets the story right.
.
The arts and entertainment crew for bringing you guys some pretty kick-ass artists to enjoy
the parties at night.
.
And, of course, Neil and Nikita for working in Jeff's office and having to actually deal
with him on every single day of the week.
.
And how many people saw the documentary?
.
Good?
You liked it?
Yeah?
.
So we definitely have to once again thank Jason and Russ for all their hard work.
.
Giving up their lives for the last two years to make this happen.
.
.
And as Jeff said, we have some friends who clearly have an active fantasy life.
.
So we'd like to take just a few minutes to recognize the people who believe that they
are retiring.
.
.
So we want to start with Zach Franken, who has run operations for the last 20 years.
.
.
.
.
Thank you, Descon.
Thank you for all my fucking gray hair.
So just to make sure that your excuse is you can't afford to come back, we're
making sure you can get in for free forever.
.
.
Now, we've never done this before.
It's really heavy and probably won't make it through x-ray.
But we've had this special plaque made for you.
You're the first person to ever receive it.
Sort of lifetime achievement award.
Goon Emeritus.
Goon Emeritus.
It's a new...
Watch the deck on!
So we'll see you again next year, right?
Yeah, I'll be keeping an eye on you guys.
Thank you so much.
No, we're not done yet.
You need to...
You need to...
You need to keep the time so you know how much time is left until the next con.
So here's a pocket watch for you to keep time.
Thank you so much.
That's from the security goons.
This is from all the security goons, all the red sharks that keep you safe.
Thank you.
And Zach, finally, having been to your house and had dinner,
knowing how skilled you are actually in the kitchen
and you're really good at what you do back at home,
we wanted to provide you this very nice knife set to take back with you.
Now, just remember, just remember,
when you go through security at the airport,
this is a culinary art exhibition.
So congratulations.
Congratulations.
Thank you, everybody.
And here's to another 20 years of DEF CON.
We've seen it change so much over the years.
We've grown up as a community,
and I have to say we are fucking awesome, so keep it up.
Yeah.
You may have recognized his mohawk and his guitar playing,
but Romer's been a long-time goon, one of my good friends,
and as soon as I moved to Washington, D.C., he moved to California.
I don't know what's up with that.
You need somebody that...
Take care of the colo, so...
Yeah, that's right.
But now he's five minutes from the colo, so it's really convenient.
You can swap out servers whenever necessary.
So I don't know how I want to really introduce you.
You found a niche at DEF CON by doing many different things over the years,
and you've done really well at every one of them,
and so it feels really bad losing you,
but you've done a great job in training your staff
and promoting people over the years,
and so it's going to be left in good hands, right?
It better be, because you're going to be back next year, right?
Yeah, apparently this retiring thing doesn't work exactly the way you thought it does.
So we've got something for you.
Also probably not safe for x-ray.
So if Zach is goon emeritus, let's see what you are.
Goon drunkus.
Goon is a drunkus.
Guitar is hammerous.
You are the second ever goon emeritus.
Goon emeritus.
Goon emeritus.
I'm going to embarrass you by reading all the stuff,
but Romer's been with us since DEF CON 7,
and so I think he's put in his 12 years.
A little bit.
Yeah, yeah.
So you don't get one of these black badges
unless you've been with us for at least 10.
So you've just made the cut, man.
Thank you very much.
It's going to be really sad seeing you go.
Thank you.
Thank you, Roger.
The only thing...
The only thing I want to say is thank you to you for all these years.
This has been an absolute blast.
I've always done it because I love it,
and I've always done it because I love you guys,
and DEF CON would not be what it is without you,
so thank you guys all for showing up every year
and making this worthwhile for us to do.
And next year, let's just all drink and me not have to work.
Applause
Applause
Applause
Applause
Applause
Applause
Applause
Applause
Yeah, so we found this really embarrassing picture of Noid.
And if you look at the badge,
I think that's a DEF CON 5 badge.
So Noid is one of a handful of people that I know,
I've met and known since DEF CON 1.
There's, I think, Connell, the original goon metalhead,
and Jennifer Granik, I think, came to the very first one,
but there's not that many people.
Okay.
From the very first one.
And not only did he stick around for 20 years,
he put in 21 years at DEF CON.
And he doesn't know it, but I do this presentation,
and it has that little VW bug with all of the people from DEF CON 1
essentially sticking out of the VW Beetle.
And he's one of those people, right up with LF1
and some of the really early pioneers.
So it's really sad, it's bittersweet to see Noid move on,
but I fully understand it, and I support him.
And he's really revolutionized the way we approach it.
It went from kind of an ad hoc,
hey, can you keep an eye on things and tell me when they're lighting the pool on fire
with floating gasoline or something,
to you seem to put out fires pretty quickly.
Would you like to do that full time, sir?
And so he's done a fantastic job,
and you can guess what he's getting from us.
He is emeritus number three.
And anyway, it's just, it's one of those things
where it's kind of tearful to see you go, man,
but I know you...
Anyway, we'll see if you come back.
Thank you so much.
Give it up!
Give it up!
One off.
Give it up.
Give it up!
going on back there? What is going on back there?
Because we know we can't resist. Yeah, totally. Right?
Thank you, Jeff. Thank you. And everybody else on the senior staff, it has been a pleasure
for the last 21 years.
It's amazing that I've been able to be a part of this thing and watch it grow from, what, 30 to 50 of us in a room to, we have storage rooms larger than the first DEF CON room.
But what I really want to say is thanks to my team for allowing me to lead them all these years.
And I think you all are going to do real good under CJ, who will be replacing me. Give it up for CJ.
And again, thank you for letting me command for the last, I think we've been formalized as more than just me since, what, DEF CON 5?
Or DEF CON 2. Yeah, 2. Jesus.
Yeah, thanks for letting me be a part of this for as long as I've been a part of it.
And I'm looking forward to whatever's next.
Thank you, Jeff.
Thank you.
Also, I have two people on my team that are retiring this year.
They both put in well over ten years.
And they have been a critical part of the success of DEF CON security.
Luna Slide?
Lando?
You can get up here, Linda.
.
.
You can come down.
.
.
So, with your ten plus years of service, you guys both have earned your black badge.
You have earned your black badge.
Thank you, everyone, for letting me be a part
of this.
And I'm sure I'll probably see you at DEF CON 22.
Don't go anywhere.
Thank you.
Thank you.
Thank you.
Yeah.
For those of you who don't know the man, I'll tell a really quick story.
In the planning for DEF CON 20, during some of the staff meetings, Jeff asked Noid, is
there anything the security team needs?
One word, battle axes.
So ‑‑ We're still waiting on them.
No.
We give you goon caliber.
We give you goon caliber.
We give you goon caliber.
We give you goon caliber.
We give you goon caliber.
And it's sharp.
I got a fucking battle axe.
Someone tweet overheard, I got a fucking battle axe.
Sweet.
By the way, you signed this yourself.
Yes.
No one told me not to.
Would you have paid attention anyway?
No.
No.
That's true.
There you go.
Thank you.
I'm Sky Dog.
Hi, everyone.
Are we having fun yet?
Watch it now.
Watch it.
I don't know what to do with it.
Figure it out on your own.
My first DEF CON was 11 years ago.
This is now my ninth year of being a goon.
At year three, I was a goon.
I earned my goon coin.
When I don't have it in my pocket at DEF CON, it's permanently locked in the safe.
I treat it as my most valuable possession.
It's a symbol of our brotherhood.
Three years ago, I was given a wonderful gift.
I got a set of challenge coins made for myself that I could give to people in our community.
The outside ring of my coin contains six qualities.
Loyalty.
Fraternity.
Eternity.
Honor.
Sacrifice.
Dedication.
Passion.
I give these away to the people in our community who exhibit those six qualities and who have
gone above and beyond.
You, sir, are the recipient of number 15.
Please take the coin.
Thank you, sir.
You stand relieved, sir.
Someone take this axe out of my hand?
Are you really sure you want to give this to me?
Could somebody else take the axe?
Ah.
Noid, the team has also prepared this watch for you, which says that you will always be
our commanding officer.
Thank you.
You might also notice with the watch, if you take the winder, it comes out as a garrote.
Good luck, everybody.
Thank you.
Thanks.
Thank you very much for being here tonight.
All right, well, for the first time in a very long time, I will not be presenting
the network slides.
You should cheer at that point.
All right, so let me introduce Effen, who is taking over from NOC.
Where are you, Luis?
There you are.
On the left.
Luis.
How's it going, guys?
So let's go real quick.
Oh, I got ten minutes?
Seven minutes?
That's too long.
So we're going to go over some stuff about the network team and what we do.
In the case you don't know yet, this is some of the stuff that we do.
We provide the wired infrastructure.
We spend all week here to provide things for speakers, vendors, contests, goons, servers,
because like the media server from Jeff is connected to the network.
The wireless network, when it's protected or not protected, which we're going to talk
about it.
And DCTV.
.
As well.
So if you're watching from your room, hello.
So what else?
The timeline.
I know most of you know this already.
Basically the timeline is we got here a week ago.
And we do set up for three days, very intense work for the team.
We have a very awesome team.
And then once the conference starts, that's when the last minute requests show up and
we have to make it work, keep it working and add some stuff to it.
So.
And tomorrow we leave, we're packing up and we leave.
But as Steve said, we plan this all year long.
And it's not different from the network site either.
But we usually start talking about what's going to happen in January.
And around March we already have some planning stuff, deadlines for things.
When things get ready.
there, July, June. That's when we have lots of calls and stuff like that.
The wired infrastructure, number one, we have an uplink of 120 megabits per second, which
some might say, oh, it's not that much. I have more than this at home maybe. But I was
looking at the old statistics and at DEF CON 14 we had a 6 megabit per second uplink.
So, I think we're doing good. And what else we do? We use free BSD firewalls.
Woo! Woo! Woo!
Ten managed switches and a whole bunch of unmanaged switches. And for the wireless
stuff, we still have the same old trusty Aruba 6000 switch with about 50 APs.
Hey, Luis.
Yes?
Did you burn out any APs this year?
No, we didn't.
Oh, that's very disappointing.
Disappointing, guys.
But we got 802.1X.
We pegged the bandwidth, though.
We did. We have a slide for that.
Oh, you've learned well.
So, talking about Internet traffic, as you can see, you guys somehow either ‑‑ nobody
here sleeps, right? But, of course, you stop using the network because you go to the bar
and the casinos. But during the party, you can see, like, Saturday night, everyone was
using that one.
So, really, those dips are just where the network traffic transfers to LodgeNet.
One way or another. And for the local ‑‑ so, that was the Internet traffic.
This is the ‑‑ and I'm going to go through this real quick. We're going to make this
available in our website, DEF CON networking.org. And we're going to add some more stuff as
well there.
But the interesting peak there is when Jeff put his media server on the network and it
was working well.
And everybody was pulling stuff. And we had to put ‑‑ apply some quality of service
so you didn't break the whole network.
As for wireless statistics, this is the number of users. So, we pegged around 600 users.
And ‑‑ but we had almost 4,000 unique MAC addresses. We know that it doesn't mean
anything, but ‑‑ right? Some stuff about statistics. We don't have ‑‑ we don't
have much information about the number of users.
So, you can see just like a historic one for this one for the number of attacks because
there were some talks about 802.1X attacks anyway.
So, there's better information there for you guys.
And on the right‑hand side, you can see the coverage.
This is, like, the real‑time coverage of an hour ago.
We always have issues.
Some of them are sort of expected.
Some are unexpected.
We enjoy this as well.
all. So this year we should make a T‑shirt 802.1X versus DEF CON secure. As Mac, the
other leader of the NOC said, next year DEF CON secure should be called DEF CON gone wild.
And I would like to thank ‑‑ this is the team. Everybody's name is there. They
do an amazing job. As I said, we do a lot of planning for this. But there's some stuff
that once we hit the ground here is a lot of hard work. We all ‑‑ this is a busy
week for many people. And these people, they really put their heart and soul and hangovers
to make this work. So including in the transition phase, the retirement fail king, Lockheed.
And the attempted retirement, Heather. I don't know where Heather is. She's trying to retire,
but she can't.
.
It was really interesting. Heather kept hanging around the NOC trying not to do work.
And it ‑‑ you know, that OCD just kept kicking in. And she'd reach over and grab
something. Sparky would go slap her hand and push her back to her chair. It just happened
for the last four days. It was really amazing.
Yeah. She got kicked out of the NOC a few times.
And I'd like personally to thank Mac for a lot of work that he put in. As I said, this
is a busy week. And I am really busy as well. And once we hit the ground, he took care of
mostly everything. So Mac, thank you.
I'd like to thank the hotel, DEF CON staff, the AV staff at the hotel. They're amazing.
They help us out a lot. We have the Twitter account. So you can follow us. But we're
not going to be posting much stuff until around this time next year.
.
But this presentation is going to go to the DEF CON Networking website. You have
there the website. Any feedback, NOC at DEFCONnetworking.org.
.
Yeah?
Okay. So next ‑‑
.
I know. I know. I'm kidding. So, yeah. So we're upgrading the wireless gear for
next year. So we're going to get more stuff.
.
Thanks, Jeff.
.
And lastly, I have 55 seconds. I'd like ‑‑
.
Yeah.
Thank you very much.
.
So this is challenging for me. Yeah, we have around 15 minutes for
We have about and over 9 semitones.
ADDITIONAL ATTITUDES
Thank you.
Thank you very much.
.
So I'm trying to link in or get back here to our staff members.
.
Okay. Go ahead.
.
have a Nico you're going to talk a little bit about roots or DEF CON kids
this year and you've got your countdown timer all right thanks Jeff Chris and
when if you're here come on up and help me announce the contest we had about 300
kids and their parents this year for roots DEF CON kids
and the kids found over 33 new zero days this year that will be responsibly
disclosing to a lot of different vendors
so we had we had six contests this year so kids a lot of them have gone home but
if you're still around if you're still in the room if you're still in the room
around and you're a contest winner you know it go ahead and start your way up
here I'm gonna start with the first contest we had called sass crack yeah by
a former White House executive sass crack for the kids where they learned
how to break into a site that looked a lot like Facebook and Twitter and they
learned how to break into those pretty easily I think all six kids got in but
sneaky McLaughlin Kira Munson and DCS man were the best in that group so if
you're around come on up
another contest we had that I think was absolutely the coolest contest in the
entire kids world this year was you guys might have heard about the Samsung smart
TV hack where some of the researchers taught you how to turn on the front
front-facing camera on a hundred and fifty million Samsung TVs out there well
they also showed the kids how to do it and it
turns out it's really easy to find zero days and Samsung smart TVs so three of
the kids found zero days within an hour and they're gonna responsibly disclose
these and actually make a lot of money for them because both Samsung and
Facebook has bug bounty programs so we showed the kids how to submit
and is as part of that they had to pledge a lot of money to get the kids to
get saying sure on their hands if they weren't parted with this knowledge that
they had to give one-third of their about bunny proceeds to the ACLU or the
EFF so we also made some money for them this year so first place in that
contest price if you're coming up
Neil got second place and sci-fi got first place
they'll sell zero days
on
fun
Bunny Muffins also had a contest.
We had a scavenger hunt this year,
much like the adults have, but without the kissing
or flashing or anything like that, obviously.
And the rainbow team won.
So rainbows, come on up.
Sci-Fi had her contest for the third year of the row,
where she teaches all the other kids how
to find zero days in apps.
And Kryptina won.
She found 27 new zero days this year in apps.
Chris Hadnagy, are you here to talk about social engineering?
OK.
Oh, OK.
Go quick, and then win.
I'm going.
I'm going.
Hey, little guys, let me jump in front of you here.
OK, so we have no time.
So Bella, Esau, if you're here, come on up.
They were our first place winners.
Connor and Tibor, if you're here, second place winners.
This year.
This year, we had a lot of help.
Michelle and Amanda and the team made this CTF for kids.
And we were told it was one of the best events they ever had.
These guys traversed all different types of ciphers
and also two military-trained snipers shooting
Nerf guns at their heads at high velocity,
just so they can win this competition.
Great job, guys.
Great job.
And there's more stuff.
Those are, by the way, quadcopters with hidden cameras in them.
Which, come on, that's just freaking cool, right?
OK, guys, we're going off stage.
We need to move away.
Yeah, go ahead and do that one.
You guys rock!
Oh, Katrina.
Come on, guys.
You guys rock.
You guys rock.
Mass confusion.
This was the first year of Hacker Jeopardy!
for kids.
It was awesome.
I want to thank Jeff and Nico for trusting that I wasn't going to fucking curse at any
of the goddamn kids.
As a result, I certainly do owe EFF a few dollars
that I promised for each fucking word I, well, never mind.
Had two great teams, seven to 12-year-olds.
They are better than any adult Hacker Jeopardy team in history.
So we've already been talking about, are you smarter than a DEFCON kid?
My Little Ponies won room seven to 12.
They got the rewards and prizes.
If you guys are here, stand up.
We don't have a lot of time.
Thirteen to 17-year-olds, a group called No Comment did awesome.
And one word of advice for all the people that you know that are haters about what we're
doing with the kids here, have them go fuck themselves.
Bring them on.
Bring the kids here.
It is awesome.
They're the next generation.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
My Little Ponies.
I keep thinking of the Pony Awards.
Okay.
We're going to talk about the fundraisers.
We had a lot of fundraising activities happen at DEFCON.
For various number of charities.
And first up we're going to talk about the, let's go to the next slide, the EFF fundraising.
So Mel, you want to talk about that?
Or have you disappeared, Mr. Mel?
What have you done to him?
He's way over there.
Okay.
Okay. Mel used to, for many years, watched over the, remember the shooting game we would have?
And then we'd hack the shooting game and put my face and other goons' faces in there so you could shoot us.
And the dunk tank.
Yeah, and then before that, the dunk tank.
And they're like, well, the shooting game is kind of getting a little old. What should we do?
Like, well, we could do the dunk tank. And Mel's like, fuck no.
I'm not standing outside and burning myself.
So instead, he's kind of taken on a new role.
And so when one thing ends at DEF CON, you can never escape.
And I want to hand it off to Mel to talk a little bit about the fundraising activities we've had going on
and announce some of the numbers that we've generated this year.
So, Mel?
Hey!
What's the next slide?
What are we doing now?
Yeah, sorry.
Okay.
So we're going to...
Okay.
Hey!
DEF CON!
Okay.
So, wow.
It's been a long time.
It's been really busy this time.
And there's so many things going on that I want to tell you, but they said I've got to keep it short,
so I'm going to try to run through it.
Okay.
There were 10 different organizations that were contributing to the EFF here.
The Summit.
Hackajar is going to come up and talk about that.
They're doing an awesome job up there.
So I'm not even going to give their number.
I promised if I wouldn't do that.
But there are others.
The Mohawks.
Any of you got Mohawks this time?
Let's see.
Stand them up!
Stand them up!
Stand them up!
All right.
All right.
Well, the Mohawks for the EFF raised $5,058.
How about that for craziness?
Okay.
Yeah, go Mohawk.
And our fantastically bizarre and creative Ed Mize, the wise Ed Mize.
I know I did it right this time.
The wise Ed Mize has raised $3,000 with his artwork for the EFF.
Yeah, boy, that's something.
And, wait, not to be undone, we also have the Fail Panel Flapjacks, Flippin' Flapjacks
for Freedom.
They raised $1,500 for the EFF today.
I'm just going with it.
I'm making it up.
I'm just going to roll.
Don't stop me now.
Okay.
Then we've got Cycle Overdrive is in at $1,215.
Good job, Cycle Overdrive.
Cycle Overdrive.
That's right, you know, pedaling it from coast to coast, raising money, all right?
Info Booth.
Did any of you go to the Info Booth?
They're our, you know, central place for what's going on, where it is, and why can't
I find it?
Well, even some of the people by there gave them money.
They got $642 in donations at the Info Booth.
Unbelievable.
Unbelievable.
And the list goes on.
Wi-Fi Village.
Wi-Fi Village is there for $610.
Okay.
Open Wi-Fi.
You rule.
And we've got in the Hardware Village, we've got Learn to Solder.
And Learn to Solder is a great program we had going.
They raised $600 for the EFF.
And not to be forgotten, Hacker Jeopardy.
Did any of you see Hacker Jeopardy?
Yeah.
Yeah.
That's my boys.
My buddy team.
They won that.
Props out.
Major props out to them.
SoCal rules.
Hacker Jeopardy.
Hacker Jeopardy.
And Vanna Vinyl with their photo opportunities raised $118 to kick in as well.
Now, I'm going to hold off on the final number here because there's a couple surprises.
But I want to speak a little bit about the EFF.
And there's a lot of initials in this business.
Those of you that don't know, the EFF is the Electronic Freedom Foundation.
Okay.
And as long as DC-1.
What's that?
Drink.
Drink.
Drink.
Did I fuck it up?
Who's got a beer?
Hey, audience.
What does EFF stand for?
Electronic?
Foundation.
Correct.
You know, you're right.
I always mess it up because I always think of the freedom thing on it.
But I'll drink.
They're responsible for why I'm still free.
They've helped me out before.
I love the EFF.
Okay.
Great.
All right.
Where were we?
Well, anyway, as long as DEFCON has been around plus one year, so they're my plus one buddies,
the EFF has been out there fighting to protect your digital rights.
And I know that this group in particular is very concerned about personal privacy.
Am I right?
All right.
For many years we've talked about this here.
We've had talks on it.
We've had demonstrations showing things about it.
You know, it's been an ongoing theme at DEFCON.
And the basic focus here is that there needs to be some more controls and accountability
for some of this stuff.
Okay?
Now, many of you know in the news recently there's been some discussion regarding a
certain three-letter agency who will remain nameless.
You can guess on your own.
Anyway, as a result, corporations and individual citizens themselves are realizing that without
greater transparency, the impact of this on our personal freedoms, the Bill of Rights,
and the First and Fourth Amendment may be severely impacted.
So, the EFF is fighting the good fight to preserve that.
And you need to know that there are many powerful interests involved in this fight.
As a result, the EFF needs your support and your help now more than ever before.
So, I'm asking each of you, go to EFF.org.
Learn more.
Look and see what they're doing.
Be part of it.
Be making a difference.
Be part of the solution.
And that's my message to you.
And with that, I think we're going to, I'd like to invite our EFF friends to come up.
Thank you.
And Hackajar.
And Hackajar.
Hackajar, are you there?
All right.
All right.
I guess the EFF has elected for me to go first.
So, my name is Hackajar.
I'm part of Vegas 2.0, as you see up on the monitors there.
We run a fundraiser on Thursday night for the EFF.
the Electronic Frontier Foundation. The gist of it is that we convince all of the speakers
from DEF CON and maybe some other conferences that are going on in town near the same time
to come into a private event that you have to pay $40 at the door to get through to and
then you get direct access in a very small intimate manner to all of the speakers throughout
all these conferences and actually talk to them and get more information about their
talks in a more direct, not, hey, that was great, move on. Like, hey, I got this thing
I'm doing that's very similar to that. We have a lot of great success stories with this
format where many people have sent us testimonials that now they're doing projects with other
people as a result of that and really pushing forward all these different interesting things
that you come here to see. We also have a bunch of entertainment and raffles and we
give away so much stuff there and as a result, everybody wants to be there on Thursday night
and I don't know if I accused you of that.
Can we use somebody to hit the button to show the actual numbers that we raised?
You ready?
Yeah, so this year at the EFF Summit we've shattered last year's number by three
times and our ultimate record by double. So this year, and I think this noting character
might have had something to do with this, here's how much we actually raised.
Not too shabby for four hours worth of work.
It was on the back end we logged over 800 hours that we know about of actually planning
and everything getting to this point and so I want to congratulate all of you out there
that made it out and made this number possible and everything. Also, if we can hit the button
again I've got to give a shout out to all of our vendors.
That paid for the bar tab. It was like a $15,000 bar tab to get you guys free booze
at this event. So thank you, Google DLF. Thank you, Occuvant. Thank you, ISEC partners.
Thank you to Crowd Tilt. Crowd Tilt gave us our seed funds to get this going. And thank
you to Tennergy. They do the little power packs for you that you can plug your iPhone
and other devices in to keep them recharged when you're not near a charger. Tennergy's
a really great last-minute thing. So thank you to Tennergy. They do the little power packs for you that you can plug your iPhone and other devices in to keep them recharged when you're not near a charger. Tennergy's a really great last-minute thing.
So thank you, Crowd Tilt. Thank you, ISEC partners.
Thank you all very much. And I'll turn it over to the EFF now. Thank you.
Before I turn it back over to Kurt with the EFF, I just want to give some final totals
here. So we had Pack-A-Jar, awesome job, man. Just keep that up. You rock. You rock.
So with the 35,000 plus from the summit and the contributions from the other groups, that
came to a total of 48,000.
$45,175.
But wait. But wait. Wait. That's not all. We have more.
There's more.
There's more. Yes, there's more. It begins you. It slices, it dices, it chops. No. But
wait, there's more. At the EFF table themselves, they had a banner year. And they're still
counting the money, but the number they've given me so far was over $45,000. Together,
that's about $93,000. I think when they're done, we're going to be very close to $100,000
raised this year for the EFF. Thank you, all of you, for doing a tremendous job coming
out for this.
Thank you. Thank you so much. You guys are amazing. It is such an honor to be here, to
be hanging out with you guys. Your support helps us fight for the future. Thank you.
Thank you, guys. Make sure you let your friends and friends know we love you. Thank you for
You guys are all amazing people.
Thank you all for standing in front of us like this.
It was an honor to see your dry hands right there.
Thank you, all of you.
What's the gnawing here?
Yep.
Oh, the polo
in black euros.
All right, you guys, here we go.
All right.
This is the girl, this is my lovely wife, and she's also the founder of Mohawk Con.
They also raise money for several other charities and other things,
so I wanted to give her a chance to let you know some of the numbers
that you guys help contribute to to some of these organizations.
Hello, I'm Ed.
In addition to the EFF, which, like he said, our total was $5,058.58,
part of the contributing factor to that was a bounty on RenderMan
and Fun Balls Mohawks.
For those Mohawks, you guys raised $1,857.76 just for those two Mohawks.
There's RenderMan right there.
I also had one fellow walk up to me at a B-Sides party
and show me his fundraiser that I had no idea existed,
and he raised $1,000.
He raised $1,000 for his own Mohawk.
And then there was another lovely woman who raised $155 for hers.
In addition to the EFF, we support Hackers for Charity.
This year, we raised $2,288 for Hackers for Charity.
So I want to quickly thank you all for donating so much.
I want to also just call out to my MohawkCon cutting crew
that shaved all of their hair.
I love your lovely heads.
And MohawkCon's grand total this year was $7,346.58.
Thank you.
All right.
Next up, we're going to talk about a couple of the other fundraisers
that we have here.
These are very near and dear to most of our hearts
because we have people in the community that are directly affected
and who...
who benefit from these types of fundraisers.
So I'd like to call up the organizers of Be The Match.
If you could come up and please join me.
Do we see them?
Are they here?
Oh, they had to take off yesterday.
So the big thing about Be The Match is that this is a bone marrow registration.
A lot of people get freaked out when they hear about bone marrow registration,
and there's all kinds of things.
There's all kinds of weird, crazy things about how painful it is or whatever.
All of that stuff has been surpassed.
The new technology makes it to where it's very beneficial.
I don't actually have the numbers for you, but I know that it was hundreds of you
went out and signed up for this and are wanting to contribute and to be part of it.
They did have a match last year, and they were able to get a DEF CON attendee
who was able to contribute to somebody so that they were able to save their life.
Blood Code.
Do we have the Blood Code organizers here?
Yes.
Please come up.
Excellent.
Jason is coming up right now.
How's it going, guys?
I want to know that we totally did something different this year, and it was really subtle,
but I think it was really important.
There were no gimmicks.
There were no contests.
There were no, I'm going to give you free stuff if you donate blood.
And this was still one of the best blood drives they've had.
It's like so.
So we don't need incentives to do something good.
The numbers were for Thursday total 29 donors, 42 donations.
Friday 44 donors, 58 donations.
Saturday 45 donors and 65 donations.
Also she wanted to say, Julie, that helped out with this, she said the people who came
to donate were some of the kindest, most generous people I've met in a long time.
With or without gifts.
Swagger.
With or without prizes, their hearts are always in the right place.
And that speaks a lot from someone who's not in the community but can see what the community
does.
So, guys, once again, y'all made this awesome, y'all made this wonderful, and you made it
that's the reason why this is such a great community and a great place to be.
Thank you once again.
So I would just like to add something to that.
So being here for so long, I told you before, I watched this community grow.
Last year, we had so much blood from blood codes, it had to be shipped out of state.
She was literally welling up when she said, you guys absolutely kick ass.
You totally beat the doctors conferences.
And I think that's awesome.
So I would like to say going forward.
Thank you.
There's a lot of people in this room, and I would like to see everybody give a pint
of blood at DEF CON.
I'm sure we can try and arrange something like that, but absolutely.
This is a classic example of showing the world what our community can do.
So stick it to them.
Give them a pint of blood.
So I'd like to, for those of you who have got something to drink, I want to just take
a brief moment to, we've got a little presentation, but I'd just like to call out this year, we
lost two really key people of the community.
A lot of you know or knew of Barnaby Jack, Dark Spirit.
And I want to say thank you.
Brad was an amazing guy.
This guy always ran at full speed.
His brain was overclocked.
I think that's probably something that did him in.
He was thinking and talking twice as fast.
And an amazing individual.
And we just want to call out and say that while they're gone, they'll never be forgotten.
And just give us a quick moment here, oh, a quick moment here to just reflect on what
it means to be part of community.
And what you can do to contribute to something bigger than yourself.
Because these people did.
And they had a great time doing it.
It wasn't painful.
It was actually really enjoyable for them.
So let's just, let's give them a round of applause.
Have a drink tonight at the bar.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Thank you.
Yeah, so it's a, it's pretty amazing when you, you and your memory will live on.
The things they did were just unforgettable.
edible. So I know when I get hit by my bus, I hope you guys will raise a drink for me
and for everybody else here because this is an amazing community. Okay, I'm not going
to keep harping on that or I'll start crying. So let's kick off the contest winners. I want
to hand that off to the contest coordinator, Pyro. We're going to work through it. We've
got black badges up here. Quickly. We are going to go through this quickly, but in
the interest of even spending more time, there's something a little special I'd like
to do. Most people don't know this. Fokker's sitting here on the front of the stage. It's
his birthday today. So would you please join me in singing Fokker, happy birthday.
Happy birthday to you. Happy birthday to you. Happy birthday dear Fokker. Happy birthday
to you.
And many more.
And many more, sir. All right, we're going to run through these really quick. For those
of you who don't know, we kind of changed the way that we do contests and events this
year. I'd like to take just a second to thank all of my goons. But to give you an idea
of how large this department has grown, I first started gooning in DEF CON 7. There
wasn't really a formal contest and event group at that time, but there were people
that were doing contests and events. And these people were out in hallways, maybe the occasional
small room. It was absolutely insane.
Here at DEF CON 21, I've moved kind of, I tried to retire, and Jeff wasn't going to
have any of that. So I moved into kind of an executive position. I'm now overseeing
two lead teams. But to give you an idea of how large contests and events has grown to,
we have 242 employees and contributors who are the contest lead or their supervisor,
or I'm sorry, their supporters. So please give a big round of applause to all of those
people that helped bring all those to you. 242.
22 of those are just contests.
242 contests and event goons. And to give you an idea of how crazy it is to try to manage
all this shit, it's 52 internal divisions. That includes the villages, all the individual
contests and events, and everything else you see there. It's about one-third of the
DEF CON floor. So I really do want to give the big props to all my goons that have helped
me out. You guys were exceptional this year. I heard nothing but props and thanks.
All right. So we're going to go ahead and keep moving on here.
Beverage cooling contraption. Beericidal, first place. Hebrew, number two.
Still using ice, number three. Now to give you an idea, still using ice are the winners
from last year. And these guys won by stacking cups in top of each other last year and then
pushing ice through it. These other guys this year, they were allowed to use CO2 and
nitrogen. So that's commonly used in brewing beer. But they did exceptional work. We got
a lot of good information there. Crack me if you can. I don't have the numbers here,
but I know that the winner had cracked hundreds of thousands of passwords. It's absolutely
insane.
Inside Pro, Team Hash Cap, John Dash Users. And then they had a street team winner. People
that were contributing who weren't here at DEF CON. But that was 16 systems.
Black Bag, obviously you can see up on the screen. I'm not going to get into really hardcore
on this. But this is an amazing competition where people are having to go in, do physical
security, virtual security. They're having to hack your PC. They're having to do lock
picking. They're having to find files and they're having to photograph them and make
sure that all of that information gets put back to where somebody can't tell that they've
been there.
True proper red teaming. And I love the fact that Deviant has really expanded upon what
used to be Gringo Warrior to really bring you guys this competition. Winners this year,
first place, Porno Claws. Second place, Hackers with Harriers. Third place, Fuzzy Hat. And
still in the running, Swords of Thunder.
Crash and Cabrillo, Fink Rules won this. Are you guys familiar with Crash and Cabrillo?
Everybody getting to see it?
Yeah.
Yeah, it's great, isn't it?
Yes.
people get punished by getting drunk. I swear there was one guy up there that was just like
oh, there you go, over there. See that awesome die? That thing will kill you if it hits you.
But they had to rule that in order to determine what they were going to be writing their code
in. And I swear this one guy was just there to get the free beer because he'd be like
A, compile. Oh, it didn't work. Drink. B, oh, compile. It didn't work. Drink. But it's
great. DEFCON scavenger hunt this year. Too old for Captain Crunch was the winning team.
Indian Joneson was team two and Spam was team three. Again, this is a crazy, crazy competition
and I was very disappointed because I really wanted to beat one of you guys for coming
up and singing a 303 song to me. I hate that group. They took our handle, they took our
logo. These guys are assholes. Nobody ever came and got the points.
Exploit Hackathon. This was great. Last year, Exploit Hackathon came in. It was their
first year and none of you guys could beat it. We didn't have anyone that was able to
actually complete the conference or the contest. This year, Toast kicked its ass. So big props
and big ups to him. Hackers Against Humanity. This is the amazing card game. If you guys
have not seen this, they're going to be giving the decks out for free. You'll be able to
get the PDF and be able to print your own decks. They also have decks that you can print
out. They have decks available for sale, I think, through their website. But the winning
teams this year, Ass won. Number two was Laurence. I have no idea how to say that. Number three
was Keith. Yeah, Keith. What a good handle, buddy. Nobody else here is named fucking
Keith. Network Forensic Puzzle Contest. Red team was number one. Tom Polo was number two.
Ninja Cyber Target Range. Again, first year contest. But I'm actually really impressed
with these guys. They had all kinds of different things these guys had to do. They had a lot
to do in order to win. Different types of Wi-Fi events, other things that were there.
It was really cool. Casey won. Brandon was second. Enrique was third. Yeah, again, really
horrible handles here, guys. When someone asks your name when you're signing up for
a conference or a hack at a hacking conference, you don't write down your legal name. Give
them your handle. Hack Fortress. Best hacker this year was Silk. Best Team Fortress 2 player
was Punks. And the winning team was Jolly and Punks.
friends with Zelda again you guys are just absolutely kicking ass on that
competition I really appreciate all the work that Logan and Bruce and everybody
else have done to bring that to DEF CON it's very much become one of our more
popular contests over the last couple of years definitely try it out but you
don't have to be a hacker if you can play the damn video game you can go and
compete and get somebody else that can do the hacking side of it for you hacker
pyramid Zaws and who's your teammate Zaws there we go Lim Child was the did I say
right close enough it's over a microphone I just kind of slurred a
blah blah blah knock two rock two or something but yes they won again this is
two years in a row and they just absolutely go up there and destroy it
every single time so you guys need to bring some strong competition to beat
them wait so so Zaws took his winnings five that well you get ten thousand
Canadian pennies he split them with his team member
cast his and I think it was epoxy and was carrying around his pimptacular like
flavor flame five thousand Canadian penny necklace but you've won again how
can you carry ten thousand pennies around you I expect to see another one
next year on your back there you go so for those that didn't hear it they
donated all of the winnings this year to the mercurial fund for those of you who
don't know what that is that's a fund that's been set up to
give to the people who don't know what that is that's a fund that's been set up to get
hackers and students here to DEF CON to help them break into this community
pimp my rascal this was awesome if you guys didn't see the really cool rascals
that were all pimped out with lights and like an IV drip for Jägermeister it
was it was nuts the only problem is we can't announce a winner because the
people who made the best ones all work on my staff and contest and event staff
are not allowed to participate from a competitive standpoint so next year go
run around
rascal I was gonna bring it up it's like seventy dollars for the entire
weekend and that's a pretty easy way to be able to walk around so that your feet
aren't just killing you project to this year ponies I or a to team DG what
is it our DG yeah dyslexia is a bitch and then PTF s and then soapy soapy they
were the big winners this year again project to is another one of those where
unlike CTF where these people spend literally year-round getting ready for
this competition you can show up to the competition you can show up to the
event you can show up at the event you can show up and you can have a private
introduction you can show up and just ask to play project two they'll give
you information we'll give you tips they'll give you hints and it's a really
fun multi approach type attack contest definitely look into it beard and
mustache contest you can see the winners up there I'm not going to go through
each one of them but this year red beard sadly has told us that he's gonna step
down I guess he's gonna try to hand the contest over to Jack Daniel if he's
interested in running it which kind of makes sense right but he's red bears
coming back next year with a brand new competition and I'm not gonna like tell
you anything about it because it's absolutely amazing but you do not want
to miss it in my opinion it's gonna be one of the strongest coolest first-year
competitions we've ever had Snowden look-alike contest this was great now I
wasn't this was a contest that I proved about a week and a half before we had
gotten like everything locked down and closed like deadline was over and done
with when he called me up and told me about this we had to do it red snow one
the real Edward Snowden came in second place funny enough snowy was number
three Yannick was four and Ed Snowden number one was number five tamper
evident this year we turned it into a village it's become such a popular
contest and gotten so big that this year tamper evident and hardware
hacking village ended up sharing a space and even though they did their
competition it was kind of neat to be able to see people
wandering in and just kind of learning the technologies Jeff created this
contest three years ago four years ago and and it's incredible to just see how
much it's grown in that time this year first place can winner was I parted
event team slack and gotta have one and we definitely want to thank the
motherfucking professionals for running the village you guys did an exceptional
job again to all the villages you guys if you spend time in the villages give
these guys love because they're spending months and months of time
spending up getting it ready for you the DEF CON Darkneck project this is a
first-year competition brought to us by Smitty and some of our other really
good friends their winners this year were Friday captain Nick and Joe and I
am gonna make a recommendation next year that this contest will be a black badge
Jeff gets the final say on all that kind of stuff I just make the
recommendations but after seeing the amount of work time and effort that
people had to put into this event I definitely think it deserves a thumbs up
one. Schemaverse Championship, this is when you're going in hacking a huge
database and doing all kinds of work with it, it's quite impressive. Shepard
took first place, Yen got the most money, final Bitcoin
Panopolis conqueror, I think I said that right, was Robog, and the best hack
was Yen and Shepard. They were talking about how cool this was because I guess
that one of the guys, Yen, who had the most money just went in and hacked it
and like completely loaded his thing completely full and then dosed it so
that nobody else could get any money. And then Crispix got honorable mention for
style and if I remember right it's because he was just stealing money from
others. The Warlock games came in, again another war game type situation.
Hoovman won first, Workaholic second, Nole was third, Happy Together fourth, and
Doxog was fifth. Wireless Panathlon, again five different things that you
have to do in Wi-Fi
to be able to win this competition. Each one of them a different style of hack.
Total Harmonic Distortion plus N was number one, Red Baron number two, and by
the way he functioned alone. Red Baron was all on his own on this one. And
Simon J was third. Hacker Pyramid, are you guys here? I'd like you guys to come up
and give your announcement on that because I didn't have your paperwork in
time. Run!
That's Hacker Jeopardy. There he comes. You're moving. Run, Forrest, run!
Hi, I'm a what? Tell us who the winners are.
Zaws and Lintel won.
Okay, excellent. We just didn't have it on paper.
Holy shit!
So now, I mean, you know, you're more than welcome to run all the way back.
Run back.
Okay.
You got to get a new black badge.
You got to bring him up.
That's happening?
Yes. Bring him up.
Really? Zaws, Lintel, get your asses up here.
Thank Jeff.
Jeff!
Oh, my God. He's going to crap himself.
Well, fuck me. I didn't know this was going to happen.
But Lintel already left.
Oh, shit!
What the hell?
Jeff, Jeff, maybe this is it.
Well, then.
Jeff.
I guess that means you only get one badge.
No. No, wouldn't do that.
Wouldn't do that.
So here you go.
For outstanding achievement in dominating Hacker Pyramid twice in a row, black badges
for you both.
You've got a
Yeah. Right on.
It's being taken to Lintel.
Excellent.
Yeah.
So very outstanding achievement, you guys.
Thank you.
You've got to make room for people who are not quite as skilled next year.
Pardon me while I fall off the stage.
Go for a run.
Excellent.
Next up, we have Hacker Jeopardy.
As you all know, Wynn retired last year.
Wynn retired last year.
Gmark came in.
And what do we all say, guys?
Don't fuck it up.
Perfect.
We had a good time.
Hey, cast members, come on down here.
Hey, we've gone from the early days when Wynn was just on his own to a team of ten.
We've got Vanna, Kitty's here.
Lintel's on a plane.
Alex is out.
Ginny's here.
Fizzgig.
Hackajar.
Bocajohn.
Int 128.
This has been a full production.
This year was pretty good.
We had, finally, we got over to track one.
So we had enough room.
Come on out next year.
We're going to see it even more interesting.
First game, we had taking a wiki last year.
Gleeks won that.
Second game, it was, we call them Wynn Job, but their actual name was Gmark.
I'm going to let you finish, but Wynn gives the best H.J. ever.
And game three, Affenborn won.
For the final, NiceHackGrey, defending for the fifth time, failed to hold onto their
crown.
And Wynn Job is the new winners.
We have a new set of Hacker Jeopardy winners.
We've got Doc Who, Freck, and Jake23.
Come on!
Come on!
Yeah!
We got a couple of badges.
Put those on the table.
On my left.
Gentlemen, you did not fuck it up.
Not yet, anyway.
You do not fuck it up.
That much.
Don't drop it, right?
It's very fragile.
Don't fuck it up.
Dun, dun, dun, dun, dun.
Dun, dun, dun, dun, dun, dun.
Dun, dun, dun, dun, dun, dun.
congratulations
well done
they'll be back next year to defend their crown
thank you very much
okay we're going to
we're going to jump over to
capture the flag winners
we have to go a little bit out of order because they've got to run
for an airplane
and we can't take the badges away
from them because this is too much of an amazing event
as if you've been paying attention
about several years ago three years ago
I really wanted to grow the size and the
scope of capture the flag contest and really
try to turn it into sort of like the world
series of hacking
and with the new organizers legit
BS they've really done that
they've made the contest more transparent
and they've also continued the tradition
of having teams that have
qualified in other places at other
contests around the world pre-qualify
winning team from the
previous year gets seated and then the rest
goes to open quals and so for the first time ever we had a team from China we
had teams from other countries have never participated before and it's really
been an amazing experience so I want to have legit BS come up and I want them to
say a couple words and then and then we're going to announce the how the
teams went and who the winners were so let's welcome the new organizers for an
amazing first year
so when you're ready the
judges to take the badges from there okay
good evening I'm Vito Genovese and we are the legitimate business syndicate
we're proud to have been selected
we're proud to have been selected to host the DEF CON 21 capture the flag
event
we're up here and we're going to share the results and a quick summary of what
the game was like
so first of all we'd like to thank Dark Tangent for taking a chance on us
we'd also like to thank the security goons for keeping our room clean and
entertaining and safe
we'd like to thank the DEF CON network operations team for providing all the
teams wired internet access throughout the whole competition and finally we'd
like to thank all the teams that qualified for running a clean and
honorable game
so this year we limited teams to eight people and so support this we gave them
fewer and more difficult services to torment them with we also ran the game
on the arm architecture for the first time so what this meant was each team
had an individual server all to themselves
it made it a lot easier us for admit to administer this and it also torture the
teams
without their well honed x86 reverse engineering skills so DEF CON capture
the flag is the highest level of computer security competition some teams
ended with very very few flags but they competed well with great skill and up
next to introduce our winners is gyno phage by the way I want to thank you
guys show them the computer again for you that didn't appreciate it that is
the computer that the teams were hacking like protecting and hosting in
the past when we've done this the team like the organizers have literally rolled
in racks of servers these guys hosted all of it in one one you to you to you
sorry in one to you it was amazing
all right hi I'm gyno faith from legitimate business syndicate second and
third place teams will receive the hardware that they played the game on
this year so they can maybe bump up to first place next year they will receive
that after closing in that hallway do not come up here when we call you out
first place will receive a black badges in third place we had rayon asrt
in second place we have the men in black
hats and in first place we had PPP the plaid Parliament of ponies
thanks everybody winning team please come up yeah DT asked if they were multiple year winners this
I believe is the first year PPP has won the DEF CON CTF so they have done very well at other CTFs
all right yeah eight people um yeah thank you for legitimate BS for running a very awesome CTF
this year especially for your first time and thank you to the rest of our team plaid Parliament of
ponies kicked ass and thank you very much our secret techniques are secret
so here are the eight badges and I actually just broke one so which one ever you
get the messed up clockwork oh oh there we go Jeff swapping out look at that I can't touch
anything without it up drink oh we lost one
you
can put this up there now what was the pit that dropped you got it okay cool okay I can fix it
there we go okay which one they're not they're social engineering social engineering CTF oh yeah
okay
The social engineering CTF?
Yeah.
For some reason, you don't have a slide here, so we don't know who won,
so you're going to have to come up here and tell us.
What's my time?
Go ahead.
Okay, so I just want to take a couple seconds to thank everybody in the audience
who kept nagging DEF CON for a bigger room,
because you made what happened today possible with Apollo Robbins coming in and getting track four.
And for the guys who moved into our room, you guys were really awesome and cool.
So thank you for that.
I really, really appreciate that.
Pyro, I love you, bro, every year.
I love you too, man.
And Cheryl, where's Cheryl?
Right here on the other side.
Is she not the queen of DEF CON people?
Come on.
Queen of DEF CON.
For you who don't know Cheryl, Cheryl is your event coordinator.
She deals with the union, the hotel, the fire marshals, literally everything.
Without her, we could not do this.
So give her a big round of applause.
Seriously.
Seriously.
Cheryl.
And if you see Betsy roaming around the hallway, give her a hug.
She needs it.
She's still working and we're all here partying.
Give Betsy a hug, damn it.
Where's DT?
Thank you.
Awesome.
Awesome this year.
So anyhow, I want to just say thank you to everyone who competed this year.
What we did, we had men versus women.
I won't go through the whole competition.
But I want to say, ladies, you killed it this year.
Wow.
I mean, you just murdered it.
You killed it.
Really, seriously.
For the women.
For the women.
Wow.
Yeah.
I don't normally do this, but I'm just going to say there was hundreds of point difference
in between the first place winner and the next person underneath them.
That's how awesome the women did this year.
It just blew us out of the water.
I'm a little embarrassed to even be up here.
I should have had Michelle do it.
Anyhow, I want to say,
just before I get there, I want to thank my whole team, because without this, without
Eric, Nick, Jim, Michelle, Amanda, Thomas, Billy, Anna, this stuff would have never happened
this year.
Okay, Lily's got a plight.
You want to hear this?
7.30, and she's waiting because she won first place.
7.20.
So get her up here.
And Lori, Lori, if you're here, you're the second place winner.
Run up here quick.
Woo-hoo!
So...
I want to...
I want to thank the guys from Ace Hackware, because what she gets is like the...
If I can show you, if we had time, it'd be awesome.
She gets like the coolest little SE gear.
There's lockpicks, bump keys, a shove knife, like one of those little Wi-Fi, Pony Express,
the number 100 SE coin for the year.
But, but, but, where's the coolest part?
Where is it, DT?
Where is it, Pyro?
The cool...
This?
The broken one?
No.
Oh, that one?
This one?
Yep.
Black badge.
Woo!
Woo!
Yeah!
Woo!
So, that's Lori.
Thank you, man.
Go get your plane.
Okay.
I got one minute left.
Lori, get your butt up here.
Woo!
Lori gets a similar thing, just not as a cool case, but a lot of really cool SE stuff.
Bump keys, lockpicks, and one of those, a pen with a little mini camera in it.
It's a little black badge for you, but you know what?
It's a pen!
Come back next year and try it again.
Thank you so much!
You're women rock!
See you guys next year!
Alright, and at this point, I'm going to hand it back over to Jeff who can close out.
Again, I'd...
Capture the packet.
Oh, capture the packet.
See, you guys, you guys made me drink over and over again, and I get too drunk to do this shit.
all right thank you capture the packet they're coming up next where are you gentlemen there they
are i'm drinking okay come on up we gotta capture the packet hey everyone so uh what'd you guys
think of the area this year like the djs the wall of sheep all the things new things we brought yeah
so if you if you didn't find us you didn't get swag if you played you learned you did anything
you got swag this year so capture packet in his fourth year 2013 we uh had over 100 people step
up for the challenge um we played uh we uh had them have to sort through over 20 terabytes of
traffic uh third place uh was
uh my little ponies i'm sure it's not the same team that played in the kid
competition maybe it was it explains everything um second place was digirev um first place was
uh ccsf hackers uh who scored 2500 points and uh we uh thanks to our sponsors uh rsa uh donated two
macbook air pros uh to them um and uh i think that's about it we we uh we trained over a thousand
people and we like i think we got through about 20 of them um so we're really excited about the
we'd be happy to do every other two more um yeah let's have them come up here oh yeah let's have
them come up oh do you want to have them come up are you guys out here sam siler all right come on
oh i got plenty of time look at that i couldn't like stay up here where are the badges where are they someone give them to me are these them
Okay. They're going to share one badge, so I think one is going to sneak in and the other
one is going to come back out. All right. Good job, guys. You did an amazing job.
And look for us next year because we're going to give you a lot harder challenges.
Since we still have time on the clock, we might as well hog it. So really quickly,
one of our challenges, we decided to pull in a little bit of physical security inside
of the network forensics. So the challenge, you had to pull an image of a physical key
out of the stream and then figure out the pin code and that was the answer. So good
luck next year. Try a little harder for those of you that kind of, meh. But we had a whole
bunch of stuff over in the next ‑‑
Next area where you could just learn. And we've trained over maybe, what, 200 people
that knew nothing about digital forensics, network forensics, from zero to capturing
a lot of traffic. So come to us and learn. We have a lot of time left over, so I'm
going to mention the Wi‑Fi sheep hunt. It was second year. We put RFID tags on all
the goons. And they were running around. And you had to run into two goons to get a password.
Also we tagged them with ‑‑
And ‑‑
We tagged them with NFC tags. So this right here is an NFC tag poster. And kind of strange.
We have all these tags around. And you guys were just like, oh, yeah, free stuff. Let's
do this. So you put your phones up there and you touch this and you touch the badges on
all these other people. And, you know, we're stand‑up guys. We have ethics. So we Rick
rolled you. We gave you discounts on stuff, free music. But we also showed a demo with
malware that can drop on your phone. And then all your SMS text can go to any one of
us. So be very careful. Use this with caution.
I'm getting some of yours now, so ‑‑
Yeah. So thanks to everyone that helped at the Wall of Sheep, Capture the Packet, all
our stuff. Everyone, have a good one.
Thanks, Jeff.
So what did you guys think of the game?
It was really cool.
It was really cool.
It was really cool.
So what did you guys think of the badges this year?
So we had a lot of people participating. It came down to the wire on Saturday night. It
was two teams that were, like, neck and neck. And Team MLF, I think that stands for Muppet
Liberation Front, actually went ahead and pulled out in front. If you guys are here,
come on up. Like, quickly. We're in a hurry.
Muppet Liberation Front.
So the MLF guys are here.
So give them a hand.
So for those of you who don't know, these guys worked pretty much all of Con on the
contest. They had to collect information from every single variant of the badge that's
out on the conference, including the presses, speakers, all of the human variants. They
had to do all kinds of OTPing with the four different pieces from the different suits.
Each suit was a different crypto puzzle in and of itself. Then they had to OTP all the
all those together. They had to get websites. There was just a lot
to it. It took them pretty much the entire con. So we've got one here
and due to an unfortunate accident, we're one short. So you guys are getting
actually three black badges this year. So everybody, thanks to Jeff for that.
Thank you.
So, you know,
it's... So you guys want to take
just a few seconds really quickly and tell us something about what you did.
Time and alcohol and
doing absolutely nothing but looking at the code and that's it.
I mean, that's really all we did the whole time.
What was something that was hard? Oh, dude, it was trying to find the red paper.
Oh, my God. Actually, the last thing was... So I kind of screwed these guys. At the very
end, they had to give me a solution and I said, it has to be written on red paper.
So just one little thing, more thing to drive them nuts. So they had worked hard to get
the solution. They're racing other teams and they're like, they have the solution.
They're like, we don't have any red paper. So I saw them running through the hotel looking
for red paper. So anyway, guys, give them a hand. It's an incredibly difficult
conversation.
So, again, I hope you guys like the badges. I'm always open to suggestions for stuff for
the next years. And I hope everyone had a little bit of fun looking at the code on
the back. Make one that I can't break.
Have you noticed a trend in badges lately? You know, when loss has been working on it,
it seems to be electronic. And then there was that physical badge. And then last year,
I think it was electronic. And then this year, it was physical.
Correct.
Huh.
I wonder.
I don't know.
Anyway.
Yeah.
So I tried.
Yeah, liquid.
So all the ROT 13 that's on all the badges that you guys have, that was actually just
a red herring as far as the contest was concerned. So they had to do different things with OTPs
and stuff like that. Anyway.
That was just to mess with them.
Yeah. Hope you enjoyed the stuff.
Yeah. So this is the last one?
All right. So that winds up the award ceremony. So I've got just a couple announcements,
minor announcements.
One is...
Reminder. For those of you who came in late, if you are missing a badge, you have a paper
badge, you don't have a real badge, we still have a limited number of real badges up here.
We'll swap out. We'll take your old one, give you a new one so you've got that. And
then I also have a message. I don't know how many of you guys went to the TeleFreak
party last year, but they're doing an after party, a DEF CON after party. Everybody's
invited. I'd like to see you all fit.
Ciao.
Ciao.
Ciao.
But this is, I mean, what do I know? I got a text message and he's like, yeah, invite
everybody to the TeleFreak 2600 Net Party. It's 8 p.m. at area. Follow at TeleFreak
or find someone with a pager. They gave out these cool pager watches that gives the exact
room location. But go to at TeleFreak and if you want an after party, you're still around
tonight. I dare you to try to wedge yourself all into the area there. So if you want an
That's what she said.
Yeah.
We'd love to get feedback by e-mail. Send us e-mail. Go to pics.defcon.org. Upload
your pics. Share your experiences with everybody. And with that said, I want to have a round
of applause for everybody that made it possible. And for you guys, we'll see you next year
right here.
Thank you.
